|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] Axis Print Server Web Interface Denial of Service Vulnerability
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Mon Jul 07 2003 - 06:53:14 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Axis Print Server Web Interface Denial of Service Vulnerability
READ ONLINE:
http://www.secunia.com/advisories/9190/
CRITICAL:
Less critical
IMPACT:
DoS
WHERE:
From local network
OPERATING SYSTEM:
Axis Print Server 5600
Axis Print Server 560
DESCRIPTION:
A vulnerability has been reported in some Axis print servers, which
can be exploited by malicious people to cause a DoS (Denial of
Service).
The vulnerability is caused due to an error in the web interface when
handling certain HTTP requests.
Examples:
http://[victim]/u_server.shtm?port=a_server.shtm
http://[victim]/?_
NOTE: It has not been confirmed whether it's only the web interface
crashing or the print server itself.
SOLUTION:
Reportedly, the vulnerability should be fixed in the latest firmware
version:
ftp://ftp.axis.com/pub_soft/prt_srv/
REPORTED BY / CREDITS:
Ian Vitek
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]